Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f760d0-2f67-4307-9f0c-3993b50b2064/1/m_BZPdqQVKNPVfIOxREGWQoXE-g.roa
File: m_BZPdqQVKNPVfIOxREGWQoXE-g.roa (raw, json)
Hash identifier: huGqxpOefySlcjJdJb0V8NfB3ICxzwKihZa6TYUzP/s=
Subject key identifier: 9B:F0:59:3D:DA:90:54:A3:4F:55:F2:0E:C5:11:06:59:0A:17:13:E8
Certificate issuer: /CN=988296c50d94bbed225f2867231fa5093debea91
Certificate serial: 0317C423
Authority key identifier: 98:82:96:C5:0D:94:BB:ED:22:5F:28:67:23:1F:A5:09:3D:EB:EA:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mIKWxQ2Uu-0iXyhnIx-lCT3r6pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f760d0-2f67-4307-9f0c-3993b50b2064/1/m_BZPdqQVKNPVfIOxREGWQoXE-g.roa
Signing time: Sat 01 Jan 2022 08:54:31 +0000
ROA not before: Sat 01 Jan 2022 08:54:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208757
IP address blocks: 45.86.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51889187 (0x317c423)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=988296c50d94bbed225f2867231fa5093debea91
Validity
Not Before: Jan 1 08:54:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bf0593dda9054a34f55f20ec51106590a1713e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f0:7a:1a:17:e9:ae:4f:e3:0d:fd:bc:53:28:
84:26:98:2d:b3:ad:ec:c0:70:74:ed:24:35:b6:c4:
52:eb:f8:77:48:a9:bf:6f:82:e6:de:9c:99:7d:e3:
15:32:43:0e:3a:01:32:d3:c6:d0:6c:ff:7f:03:ad:
91:3e:ab:e5:17:75:81:61:19:d0:7c:fb:dd:51:87:
77:6d:be:6f:c7:30:19:7b:56:27:ab:63:1c:a7:3d:
9b:ac:2c:a9:e4:d7:86:55:52:21:fb:d4:98:a3:cb:
8c:88:c3:32:56:85:97:c8:7f:2f:9a:98:06:4e:97:
ae:b7:4b:d0:13:02:df:4f:5e:58:d2:d7:89:11:9e:
1c:2f:fe:cd:7d:46:ee:99:7d:e7:42:38:d6:63:f1:
bb:bf:75:cc:1e:f0:a6:9c:a6:7b:d0:37:ad:2e:73:
bd:8f:a0:01:99:46:5c:71:6e:bf:83:79:3a:3a:21:
44:5d:4c:73:6f:81:e4:9b:2c:50:86:bd:88:8b:4e:
9b:3a:fb:5f:6d:4b:1d:0b:c9:11:5e:9a:45:95:07:
06:2c:84:d5:1a:19:84:fb:20:89:2b:6b:f3:7d:bb:
24:4e:40:64:f7:c6:a2:1e:e2:cf:95:fa:f5:75:c2:
77:15:4d:0f:ec:8b:cb:15:f1:09:c7:93:81:85:b0:
c4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:F0:59:3D:DA:90:54:A3:4F:55:F2:0E:C5:11:06:59:0A:17:13:E8
X509v3 Authority Key Identifier:
keyid:98:82:96:C5:0D:94:BB:ED:22:5F:28:67:23:1F:A5:09:3D:EB:EA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mIKWxQ2Uu-0iXyhnIx-lCT3r6pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f760d0-2f67-4307-9f0c-3993b50b2064/1/m_BZPdqQVKNPVfIOxREGWQoXE-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f760d0-2f67-4307-9f0c-3993b50b2064/1/mIKWxQ2Uu-0iXyhnIx-lCT3r6pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.48.0/22
Signature Algorithm: sha256WithRSAEncryption
76:68:e0:47:7c:81:12:1b:eb:32:45:9f:e7:97:cb:bf:93:47:
fb:69:2e:20:8a:31:b1:12:c9:f4:e6:74:49:b3:4e:a6:22:c9:
db:b6:a0:c5:c6:e7:be:c3:dc:e1:82:61:9e:b3:99:43:ea:f8:
69:04:29:57:18:80:55:6a:48:27:75:54:c0:3d:36:a9:78:59:
e6:44:cc:08:06:9c:06:3e:54:c0:a5:6f:4b:b8:2f:dd:c6:bd:
13:73:d3:7b:2b:a6:24:18:00:a5:1b:76:6f:60:1c:22:e7:40:
5f:7c:5c:c4:fa:61:2a:a5:f6:1a:7f:06:5a:15:8c:f4:68:32:
04:e4:1f:cb:77:12:fb:19:62:75:00:4a:01:eb:06:eb:94:82:
f5:0c:dd:78:e4:a6:a6:a6:d6:0e:3c:0c:a1:95:66:87:8e:f5:
82:51:77:79:60:46:48:4c:0d:6a:13:6d:f0:b7:bd:a1:fd:b7:
03:2f:fb:5e:03:46:93:a6:36:50:87:b8:ec:60:93:7c:d2:57:
f8:56:d4:a4:3e:d7:e9:c3:37:6f:3e:63:54:27:3c:ae:12:a3:
e1:e9:97:a9:68:71:f7:2a:da:16:ee:26:68:54:0f:3f:47:3d:
48:57:fe:4e:8d:48:87:e1:b6:e1:37:47:b8:45:bf:16:1e:93:
a7:17:19:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:23 2024 by rpki-client on console-fra.rpki-client.org